Home/ Questions/Q 7045945
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-28T02:35:31+00:00

ptrace(2) provides tools to modify a Linux process’s user area (search http://linux.die.net/man/2/ptrace for PTRACE_POKEUSER).

  • 0

ptrace(2) provides tools to modify a Linux process’s “user” area (search http://linux.die.net/man/2/ptrace for PTRACE_POKEUSER).

What does this memory region look like? Where can I find the documentation of its layout?

Thanks!

P.S. I realize the area contains things like signal actions, accounting information and a system stack, but I’m curious of the exact format. =)

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Under PEEKUSER, the man page for ptrace says

    Reads a word at offset addr in the child’s USER area, which holds the registers and other information about the process (see <sys/user.h>).

    So look in /usr/include/sys/user.h to see the definition of struct user. To access things from there you’ll want to use an offsetof macro to find the right offset to read/write the data you want.

    • 0